Ignite 2017 – Azure Security Center Domination!

I’ve been to all editions of Microsoft Ignite so far, 2015 in Chicago, 2016 in Atlanta, 2017 in Orlando, and I’ve never seen this level of excitement for Azure in general. Same applies to Azure Security Center, previous year was most likely: “What’s this Azure Security Center”, while this year was more like: “We are using Security…


New Articles about Azure Security Center

Hello Security community! Quick update here just to bring awareness about some new articles (and some updates) that we had recently at Azure Security Center: Provide security contact details in Azure Security Center Add a web application firewall in Azure Security Center Update OS version in Azure Security Center Enable Network Security Groups in Azure…


Operations Management Suite Security and Audit Solution

Today we are releasing a series of new articles about Operations Management Suite (OMS) Security and Audit Solution. I had a pleasure to work with an old friend (Meir Mendelovich – from the Forefront UAG days and now OMS PM) producing these articles.  OMS Security and Audit Solution brings all security details together in a single dashboard…


Building a Secure Foundation for IoT

You may have heard that IoT stands for Internet of Threats, however this doesn't mean that you can't have a secure foundation to adopt IoT (which is really Internet of Things). Security for IoT is not one single button that you will press and say: now we are secure. There are many variables to consider…


Azure Security Center Public Preview

Yesterday was a great day, the latest addition to the Azure family was released: Azure Security Center. I was working on this project for a long time, helping the team to build the documentation and I'm very proud to be part of this great team. Azure Security Center was introduced to me when it didn't…


A Practical Guide to Design Secure Health Solutions Using Microsoft Azure

A Practical Guide to Designing Secure Health Solutions Using Microsoft Azure whitepaper providers readers considerations guidance for using cloud technology, includes risk management, shared responsibility considerations, establishing an information security management system, understanding industry and local regulations, and establishing standard operating procedures. It outlines, and provides recommendations to 13 security principles that are both aligned…


Private Cloud Security Considerations for Enterprise IT

Today I’m pleased to announce that we published the latest version of this document. We worked together with Microsoft Consultants and Architects to review our original article and the result is this 80 pages long Considerations Guide. You can download this document from the link below: https://gallery.technet.microsoft.com/Private-Cloud-Security-ce808498


Infrastructure as a Service Product Line Architecture

Quick post here just to announce that our team released today a collection of IaaS PLAs. You can download them from the links below: Infrastructure as a Service Product Line Architecture – Fabric Management Guide Infrastructure as a Service Product Line Architecture-Fabric Architecture Guide Infrastructure as a Service Product Line Architecture-Deployment Guide Infrastructure as a…


Request for Feedback – CSA Cloud Controls Matrix (CCM)

Cloud Security Alliance is inviting the community to give feedback in the new version of the CCM. This version has updates in the following areas: AICPA 2014 Trust Services Criteria Canada Personal Information Protection Electronic Documents Act COBIT 5.0 Children’s Online Privacy Protection Act CSA Enterprise Architecture European Network Information and Security Agency Information Assurance…


Hybrid IT Infrastructure Solution for Enterprise IT

Last week my friend Tom Shinder announced here the new content that our team launched, called Hybrid IT Infrastructure Solution for Enterprise IT. This content was based on a tested solution involving many technologies such as Windows Azure, Windows Server 2012, SSO, DirSync and others. If you didn’t see this content yet, make sure to…